Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Renegotiation is broken with specific changes in cipher suite #443
I received a request to verify if renegotiation was working with LibreSSL from one of the Apache httpd devs.
In all cases, the initial connection is OK,
@Sp1l - thanks for the detailed report.
This is readily reproducible with Apache httpd and
printf "GET /renegotiate/cipher HTTP/1.1\r\nHost: 127.0.0.1:42002\r\n\r\n" | openssl s_client -connect 127.0.0.1:42002 -ign_eof
I'll have a diff out to fix this shortly.